This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yjKc7Y77QfO0ogeNlLuwo6q0-wI.cer File: yjKc7Y77QfO0ogeNlLuwo6q0-wI.cer (raw, json) Hash identifier: FPt2B5D61VByMKBAgC4EoeaQFKAHc5uMQH9yHQcrfhg= Subject key identifier: CA:32:9C:ED:8E:FB:41:F3:B4:A2:07:8D:94:BB:B0:A3:AA:B4:FB:02 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E3736982A4B9B8D6DDDAF7808EF4EB5 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/53/50e780-eca7-458e-b6aa-9dbc35672329/1/yjKc7Y77QfO0ogeNlLuwo6q0-wI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/53/50e780-eca7-458e-b6aa-9dbc35672329/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:18:26 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 211055 IP: 185.233.130.0/24 IP: 2a11:3400::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:36:98:2a:4b:9b:8d:6d:dd:af:78:08:ef:4e:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ca329ced8efb41f3b4a2078d94bbb0a3aab4fb02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0c:23:ca:48:86:aa:72:3e:3a:a8:ca:8f:a6: 5a:bf:0a:66:fd:ce:0d:73:85:ce:8d:f2:a2:ac:8d: c8:53:06:7e:b6:f0:db:75:2e:7c:ae:95:8c:b2:dc: f2:85:93:ee:c2:2e:fe:58:6e:7a:01:aa:b7:ee:5a: 1c:9e:93:0e:0c:65:f6:5e:6a:98:e2:26:7c:24:57: c7:47:b9:58:62:49:85:cf:7c:52:e8:ee:26:30:88: 92:88:14:69:2c:85:45:ed:54:c5:cc:80:c6:58:bb: a0:12:20:ff:0e:1d:b9:a4:fc:9c:49:26:9c:9b:68: bd:0c:9b:25:21:46:eb:ea:ea:25:15:af:13:3c:45: f4:97:6e:4f:92:17:39:5f:af:dc:cf:77:da:1f:af: 5b:4c:d6:9b:a9:c3:51:8e:d0:73:3b:b6:7f:cf:c7: 76:b7:22:4c:87:2e:62:a1:ce:41:3d:11:52:2a:a2: 60:e8:31:ba:59:2c:60:21:08:25:59:51:bb:3b:4a: 0c:81:4e:77:c6:03:c1:5e:ac:bb:64:bb:9a:66:a9: 0f:b1:06:12:ea:d7:b7:bf:4e:53:13:35:db:4e:19: d4:15:92:72:b2:15:78:6d:51:7c:63:db:bc:c7:12: 9b:4b:8c:73:37:0d:c2:97:cc:9a:4f:31:69:75:2d: be:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:32:9C:ED:8E:FB:41:F3:B4:A2:07:8D:94:BB:B0:A3:AA:B4:FB:02 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/50e780-eca7-458e-b6aa-9dbc35672329/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/50e780-eca7-458e-b6aa-9dbc35672329/1/yjKc7Y77QfO0ogeNlLuwo6q0-wI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.233.130.0/24 IPv6: 2a11:3400::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 211055 Signature Algorithm: sha256WithRSAEncryption 27:72:f3:57:b1:09:52:25:47:29:1b:54:00:60:32:ea:25:4d: 5a:f8:35:96:07:19:3e:37:2e:af:d8:77:eb:4b:c2:86:b2:d7: 45:3a:ac:ee:e3:d3:dd:20:30:0b:5e:bc:49:da:62:10:67:53: 2d:1c:3a:20:87:b2:9b:1c:10:42:f5:1f:2b:81:31:c8:35:92: b1:a1:11:e9:a7:3f:94:4e:c0:4e:d0:87:9a:e9:b1:bf:cb:cd: f0:e7:70:ac:59:74:39:d0:1f:c8:15:a8:a7:14:a9:5c:29:e3: e4:ad:ac:b7:e2:82:f6:ad:f4:d6:e9:74:64:04:d5:7d:23:8f: 65:2c:93:01:5b:13:e8:f1:98:19:74:f6:57:d1:26:21:b1:b2: 97:27:85:69:7c:e2:6e:b6:d1:79:e5:f8:cc:f5:3c:f9:05:de: 33:aa:e3:c6:8c:39:42:6a:a3:09:da:5d:93:1a:92:d0:91:dc: 8a:5a:fb:90:e8:e6:55:7d:e5:4d:69:a7:d8:d6:4c:48:ff:4a: 27:48:38:73:01:51:e1:e4:db:a3:f2:50:70:9d:9d:a8:e6:39: cd:d6:c3:a0:4d:c8:e1:d3:58:aa:f6:68:bf:37:c8:c6:d5:96: 59:e8:3c:9a:5b:6e:3e:de:21:e3:b1:75:06:92:ac:a1:55:c2: b0:9c:fe:4d -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt+NzaYKkubjW3dr3gI7061MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYTMyOWNlZDhlZmI0MWYzYjRhMjA3OGQ5NGJiYjBhM2FhYjRmYjAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwQwjykiGqnI+OqjKj6Zavwpm/c4N c4XOjfKirI3IUwZ+tvDbdS58rpWMstzyhZPuwi7+WG56Aaq37locnpMODGX2XmqY 4iZ8JFfHR7lYYkmFz3xS6O4mMIiSiBRpLIVF7VTFzIDGWLugEiD/Dh25pPycSSac m2i9DJslIUbr6uolFa8TPEX0l25Pkhc5X6/cz3faH69bTNabqcNRjtBzO7Z/z8d2 tyJMhy5ioc5BPRFSKqJg6DG6WSxgIQglWVG7O0oMgU53xgPBXqy7ZLuaZqkPsQYS 6te3v05TEzXbThnUFZJyshV4bVF8Y9u8xxKbS4xzNw3Cl8yaTzFpdS2+owIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFMoynO2O+0HztKIHjZS7sKOqtPsCMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzUzLzUwZTc4 MC1lY2E3LTQ1OGUtYjZhYS05ZGJjMzU2NzIzMjkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTMvNTBlNzgw LWVjYTctNDU4ZS1iNmFhLTlkYmMzNTY3MjMyOS8xL3lqS2M3WTc3UWZPMG9nZU5s THV3bzZxMC13SS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAuemCMA0EAgACMAcDBQMqETQAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwM4bzANBgkqhkiG9w0BAQsFAAOCAQEAJ3LzV7EJUiVH KRtUAGAy6iVNWvg1lgcZPjcur9h360vChrLXRTqs7uPT3SAwC168SdpiEGdTLRw6 IIeymxwQQvUfK4ExyDWSsaER6ac/lE7ATtCHmumxv8vN8OdwrFl0OdAfyBWopxSp XCnj5K2st+KC9q301ul0ZATVfSOPZSyTAVsT6PGYGXT2V9EmIbGylyeFaXzibrbR eeX4zPU8+QXeM6rjxow5QmqjCdpdkxqS0JHcilr7kOjmVX3lTWmn2NZMSP9KJ0g4 cwFR4eTbo/JQcJ2dqOY5zdbDoE3I4dNYqvZovzfIxtWWWeg8mltuPt4h47F1BpKs oVXCsJz+TQ== -----END CERTIFICATE-----Generated at Mon Jan 26 04:54:05 2026 by rpki-client